stack "Error: self signed certificate in certificate chain" when trying to build 'node-gyp configure'

Question

I got below error when trying to build the microsoft driver for nodejs for sql server

gyp info it worked if it ends with ok

gyp info using node-gyp@3.2.1

gyp info using node@5.3.0 | win32 | x64

gyp http GET https://nodejs.org/download/release/v5.3.0/node-v5.3.0-headers.tar.gz

gyp WARN install got an error, rolling back install

gyp ERR! configure error

gyp ERR! stack Error: self signed certificate in certificate chain

gyp ERR! stack at Error (native)

gyp ERR! stack at TLSSocket. (_tls_wrap.js:1057:38)

gyp ERR! stack at emitNone (events.js:67:13)

gyp ERR! stack at TLSSocket.emit (events.js:166:7)

gyp ERR! stack at TLSSocket._finienter code hereshInit

gyp ERR! not ok "

i tried with below workaround but it dint work

1) upgrade your version of npm

npm install npm -g --ca=null

- or -

2) tell your current version of npm to use known registrars  

npm config set ca=""

Can anyone guide me how to resolve this certificate issue

Is there an antivirus that is blocking npm access? What version of npm are you using currently? Thanks — giri-sh, Jan 05 '16 at 10:44
npm version is 3.5.2 , yes there is a McAfee antivirus system is corporate network ,Thanks Dilip — Dilip Reddy, Jan 05 '16 at 11:04
Can you try disabling the antivirus and perform the installation? HTTPS protection can often block npm from building the packages. Thanks — giri-sh, Jan 05 '16 at 11:06
Since my system is in corporate network i will not be able to do it , is there any other way to bypass it , Thanks Dilip — Dilip Reddy, Jan 05 '16 at 11:09

score 15 · Answer 1 · answered Jan 28 '16 at 19:22

15

Unfortunately node-gyp doesn't utilize npm's certificate settings.

If you are calling node-gyp, you can updated to the latest node-gyp then utilize a new --cafile parameter to supposedly provide a valid ca certificate.

If you are using npm to install a package that builds itself with node-gyp, your only recourse is a hack to set NODE_TLS_REJECT_UNAUTHORIZED=0 environment variable beforehand, to have it ignore CA certificate issues.

See discussion on github here: https://github.com/nodejs/node-gyp/issues/695

answered Jan 28 '16 at 19:22

mujimu

1,449
11
11

2

changes goes into node environment, not into system environment. npm config set NODE_TLS_REJECT_UNAUTHORIZED=0 – MattOpen Jun 14 '18 at 14:29
@pixelquadrat Am pretty sure that isn't the case. Using the `npm config` command made no difference for me, whereas using the environment variable got past the issue (...and onto another one but that's a different story!) – Steve Chambers Dec 08 '20 at 16:35
Check this link maybe this helped: https://stackoverflow.com/questions/42722457/how-to-prevent-node-gyp-from-downloading-node-headers-tar-gz-and-node-lib-from-i – Naveen Kumar Jun 16 '23 at 08:58

score 3 · Answer 2 · answered May 31 '17 at 19:30

3

For me gyp rebuild could not find binding.gyp and it was trying to download it. Try running: sudo npm install -g --unsafe-perm binding

answered May 31 '17 at 19:30

verses

51
3

score 3 · Answer 3 · answered Sep 03 '19 at 11:15

Came across the same problem when node-gyp starts compiling node.js addons source. And as @mujimu suggested, fixed it setting a shell variable NODE_TLS_REJECT_UNAUTHORIZED value to 0 before executing npm install, as follows:

$ set NODE_TLS_REJECT_UNAUTHORIZED=0
$ npm install

score 2 · Answer 4 · edited Dec 14 '19 at 08:00

2

Used npm config set strict-ssl false and that fixed the issue.

edited Dec 14 '19 at 08:00

TT.

15,774
6
47
88

answered Dec 14 '19 at 07:45

arul pushpam

501
6
6

NOPE same error, Turned OFF VPN. Boom! it worked. – Bob Small Jun 04 '23 at 21:19
Please do NOT do this. Man in the middle attacks are real. – noahlz Jul 20 '23 at 15:30

score 1 · Answer 5 · answered Sep 20 '19 at 14:18

1

Set your certificate file to be used when doing HTTPS requests using the following command:

npm config set cafile /path/to/your/cert.pem --global

answered Sep 20 '19 at 14:18

WitnessTruth

539
2
9
27

doesn't work with node-gyp – Rexave Feb 24 '23 at 10:42
@Rexave sorry my friend! O solved the mentioned issue on 2019. The node-gyp error appeared to me when I wasn't configured Python 3 and the visual C++ SDK on my windows. – WitnessTruth Feb 27 '23 at 17:53

score 1 · Answer 6 · answered Oct 04 '21 at 09:04

3 steps to solve this if this is related to a corporate proxy:

Retrieve public cert and convert them to .pem format. The file looks like this. -----BEGIN CERTIFICATE----- ABCDEFGHIJKLMNOPQRSTBLABLA...MORECHARSHERE -----END CERTIFICATE-----\n------BEGIN CERTIFICATE ... etc depends on your company
Store them somewhere on your pc. I store them in my repo
In a terminal execute NODE_EXTRA_CA_CERTS=/home/<yourUser>/git/myproject/certs/myBundle.pem npm i --quiet

For Windows you've got to change that to: NODE_EXTRA_CA_CERTS=C:\Users\<yourUser>\git\myproject\certs\myBundle.pem npm i --quiet

How to retrieve the public cert and convert them to .pem format? — Bruno Carneiro, Apr 13 '22 at 16:35

score -1 · Answer 7 · answered Nov 27 '21 at 06:40

-1

Try uninstalling Angular/cli first and installing node-gyp and then try reinstalling Angular cli

npm uninstall -g @angular/cli
npm install -g node-gyp
npm install -g @angular/cli

It works perfectly

answered Nov 27 '21 at 06:40

Sreekanth Kategaru

133
1
4

NOPE same error, Turned OFF VPN. Boom! it worked. – Bob Small Jun 04 '23 at 21:18

stack "Error: self signed certificate in certificate chain" when trying to build 'node-gyp configure'

7 Answers7